CVE-2025-52496

Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.

References

Affected packages

Git / github.com/armmbed/mbedtls

Affected ranges

Type

GIT

Repo

https://github.com/armmbed/mbedtls

Events

Introduced

Fixed

c765c831e5c2a0971410692f92f7a81d6ec65ec2

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "3.6.4"
        }
    ]
}

Affected versions

Other

beta-oob-2

mbedos-release-15-11

mbedos-techcon-oob2

mbedtls-2.*

mbedtls-2.0.0

mbedtls-2.1.0

mbedtls-2.1.1

mbedtls-2.1.2

mbedtls-2.10.0

mbedtls-2.11.0

mbedtls-2.12.0

mbedtls-2.13.0

mbedtls-2.13.1

mbedtls-2.14.0

mbedtls-2.16.0

mbedtls-2.19.0

mbedtls-2.19.0d1

mbedtls-2.19.0d2

mbedtls-2.19.1

mbedtls-2.2.0

mbedtls-2.2.1

mbedtls-2.20.0

mbedtls-2.20.0d0

mbedtls-2.21.0

mbedtls-2.22.0d0

mbedtls-2.24.0

mbedtls-2.26.0

mbedtls-2.3.0

mbedtls-2.4.0

mbedtls-2.5.0

mbedtls-2.5.1

mbedtls-2.6.0

mbedtls-2.6.0-rc1

mbedtls-2.7.0

mbedtls-2.7.0-rc1

mbedtls-2.8.0

mbedtls-2.8.0-rc1

mbedtls-2.9.0

polarssl-1.*

polarssl-1.2.0

polarssl-1.2.1

polarssl-1.2.2

polarssl-1.2.4

polarssl-1.2.5

polarssl-1.2.6

polarssl-1.3.0

polarssl-1.3.0-rc0

polarssl-1.3.1

polarssl-1.3.2

polarssl-1.3.3

polarssl-1.3.4

polarssl-1.3.5

polarssl-1.3.6

polarssl-1.3.7

polarssl-1.3.8

polarssl-1.3.9

v2.*

v2.24.0

v2.26.0

yotta-2.*

yotta-2.3.1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-52496.json"